Fintech Security Architect

This role is responsible for comprehensively reviewing and embedding technical security architecture and controls requirements in digital, cloud, mobile money, IOT and new products and application areas.

This includes planning and preparing solution designs, reference architectures, standards and configurations, and engagement models to be implemented across all business areas, core systems, third‑party interfaces, and the internal core network interfaces.

This role will be a valued partner to development and engineering teams to ensure secure architectures, patterns, and solutions are created and maintained for Cloud, digital, IoT and Fintech environments.

• Participate in and lead the security design and implementation of all products across Consumer, Enterprise, Technology, Digital and Financial Services – design phase security architecture and post‑implementation.
• Experience with Cloud Security platform vendors and technologies such as Azure and GCP; drive the design and implementation of secure technologies and applications in support of Enterprise‑wide and Business Unit applications.
• Partner with IT and risk management to develop a comprehensive set of cyber‑security policies and procedures governing hosted and SaaS environments.
• Provide security architectural guidance and review on business and technology products / solutions.
• Model threats and risks as well as the controls necessary to mitigate them, on both an organisational and technical level – thinking like a malicious hacker and anticipating the moves and tactics a hacker might use to attack MTN systems.
• Follow the architecture analysis process, which consists of research, validation and evaluation of all new initiatives, with phase‑gate reviews presented to all stakeholders during the process.
• Ensure that third‑party solutions and products follow MTN Controls standards.
• Review the security architecture design of MTN applications and products for cloud and on‑prem.
• Perform best‑practices risk assessment of MTN’s products’ security stacks.
• Build security into MTN Software Development Lifecycle, creating secure software development methodology (secure application development and coding practices; security testing), defining processes and establishing meaningful metrics for management.
• Work with the product and existing Security teams to identify and assist with building and implementing policies, standards, processes, risk and control frameworks that meet MTN SA’s business requirements.
• Evaluate and oversee the security of outsourced / third‑party technologies and hosting environments to ensure they provide adequate protection for the processing, transmission, and storage of MTN’s information.
• Act as a subject‑matter expert and provide consistent interpretation of security controls and requirements to MTN SA security teams, application development and support personnel, including enterprise operational staff and business unit personnel.
• Evaluate outsourced mobile money integration points to ensure they provide adequate protection for the processing, transmission, and storage of transactions.

• Minimum of 3 years tertiary qualification in Information Technology / Engineering.
• SABSA, Cloud Security and/or TOGAF qualification – advantage.
• Other qualifications (CompTIA Security+, ITIL, COBIT) – advantage.
• Fluent in English.

• Minimum of 3+ years of relevant work experience in Information Security.
• Experience in designing and implementing cybersecurity systems architectures.
• Experience in managing and implementing large‑scale security projects.
• Advanced working understanding of the information technology environment of a telecom company.
• Understanding of security infrastructure in Public and Private Cloud, e.g. virtual network infrastructure, hybrid IaaS / PaaS / SaaS solutions.
• Other security experience such as NAC, Cisco ISE, CASB Solution Netscope, Web security technologies, architecture, operations, GRC, OWASP, etc.
• Able to provide the Project and existing Security teams the necessary guidance to build policies, standards, risks and controls frameworks that meet MTN Group and operational requirements of the business.
• Good experience in security architecture design in Cloud and on‑prem.
• Design and implementation of NGFW PA / Fortinet, IOT, End‑point protection, multi‑factor authentication.
• Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc.) and other IAM technologies.
• Understanding of the implementation, operation and maintenance of SIEM, boundary protection technologies (firewalls, mail gateways), antivirus and AD security products.
• Knowledge of web application architectures.
• Knowledge of threat modelling.

• Seniority level: Mid‑Senior.
• Employment type: Contract.
• Job function: Engineering, Information Technology, and Distribution.
• Industries: IT Services and IT Consulting, IT System Data Services, and IT System Installation and Disposal.